Not monitoring API calls for management console sign-in without MFA

Details

This rule checks for adherence to Center for Internet Security (CIS) Recommendation 3.2, Ensure a log metric filter and alarm exist for Management Console sign-in without MFA. https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf#page=91

Tags: cis